Added unilateral-close-info.

Author: ksedgwic

contrib/remote_hsmd/NOTES.md

@@ -82,11 +82,10 @@ Some popular tests:
     export THETEST=tests/test_connection.py::test_reconnect_openingd 
     export THETEST=tests/test_connection.py::test_shutdown_awaiting_lockin
 
-    # unilateral_close_info
-    tests/test_closing.py::test_closing_negotiation_reconnect
-    tests/test_closing.py::test_permfail
-    tests/test_closing.py::test_option_upfront_shutdown_script
-    tests/test_connection.py::test_fee_limits
+    # unilateral_close_info option_static_remotekey
+    export THETEST=tests/test_connection.py::test_fee_limits
+    export THETEST=tests/test_closing.py::test_option_upfront_shutdown_script
+
 
 rust-lightning-signer
 ----------------------------------------------------------------

contrib/remote_hsmd/dump.cc

@@ -75,15 +75,20 @@ string dump_pubkey(const struct pubkey *kp)
 	return dump_hex(kp->pubkey.data, sizeof(kp->pubkey.data));
 }
 
-string dump_signatures(const u8 **sp)
+string dump_witnesses(const u8 ***wp)
 {
 	ostringstream ostrm;
  	ostrm << "[";
-	for (size_t input_ndx = 0; input_ndx < tal_count(sp); ++input_ndx) {
+	for (size_t input_ndx = 0; input_ndx < tal_count(wp); ++input_ndx) {
 		if (input_ndx != 0)
 			ostrm << " ";
-		u8 const *sig = sp[input_ndx];
+		ostrm << "[";
+		u8 const *sig = wp[input_ndx][0];
 		ostrm << dump_hex(sig, tal_count(sig));
+		ostrm << " ";
+		u8 const *pubkey = wp[input_ndx][1];
+		ostrm << dump_hex(pubkey, tal_count(pubkey));
+		ostrm << "]";
 	}
  	ostrm << "]";
 	return ostrm.str();

contrib/remote_hsmd/dump.h

@@ -9,7 +9,7 @@ std::string dump_secp256k1_ecdsa_recoverable_signature(const secp256k1_ecdsa_rec
 std::string dump_secret(const struct secret *sp);
 std::string dump_node_id(const struct node_id *pp);
 std::string dump_pubkey(const struct pubkey *kp);
-std::string dump_signatures(const u8 **sp);
+std::string dump_witnesses(const u8 ***wp);
 std::string dump_unilateral_close_info(const struct unilateral_close_info *ip);
 std::string dump_utxo(const struct utxo *in);
 std::string dump_utxos(const struct utxo **utxos);

contrib/remote_hsmd/hsmd.c

@@ -1638,7 +1638,6 @@ static struct io_plan *handle_sign_withdrawal_tx(struct io_conn *conn,
 	u32 change_keyindex;
 	struct utxo **utxos;
 	struct bitcoin_tx *tx;
-	struct bitcoin_tx *tx2;	// REF
 	struct pubkey changekey;
 	struct bitcoin_tx_output **outputs;
 	u32 nlocktime;
@@ -1652,77 +1651,60 @@ static struct io_plan *handle_sign_withdrawal_tx(struct io_conn *conn,
 		return bad_req_fmt(conn, c, msg_in,
 				   "Failed to get key %u", change_keyindex);
 
+	// FIXME - The next few lines are for debug, remove them.
+	struct bitcoin_tx *tx2 =
+		withdraw_tx(tmpctx, c->chainparams,
+			    cast_const2(const struct utxo **, utxos), outputs,
+			    &changekey, change_out, NULL, NULL, nlocktime);
+	sign_all_inputs(tx2, utxos);
+	print_tx("REF", tx2);
+
 	tx = withdraw_tx(tmpctx, c->chainparams,
 			 cast_const2(const struct utxo **, utxos), outputs,
 			 &changekey, change_out, NULL, NULL, nlocktime);
 
-	/* FIXME - There are things we can't do remotely yet:
-	 * 2. Handle inputs w/ close_info.
-	 */
-	bool demure = false;
-	for (size_t ii = 0; ii < tx->wtx->num_inputs; ii++)
-		if (utxos[ii]->close_info)
-			demure = true;
-
-	if (!demure) {
-		u8 ** sigs;
-		proxy_stat rv = proxy_handle_sign_withdrawal_tx(
-			&c->id, c->dbid, &satoshi_out,
-			&change_out, change_keyindex,
-			outputs, utxos, tx, &sigs);
-		if (PROXY_PERMANENT(rv))
-			status_failed(STATUS_FAIL_INTERNAL_ERROR,
-				      "proxy_%s failed: %s", __FUNCTION__,
-				      proxy_last_message());
-		else if (!PROXY_SUCCESS(rv))
-			return bad_req_fmt(conn, c, msg_in,
-					   "proxy_%s error: %s", __FUNCTION__,
-					   proxy_last_message());
-
-		/* Sign w/ the remote lightning-signer. */
-		g_proxy_impl = PROXY_IMPL_COMPLETE;
-		assert(tal_count(sigs) == tal_count(utxos));
-		for (size_t ii = 0; ii < tal_count(sigs); ++ii) {
-			/* Figure out keys to spend this. */
-			struct pubkey inkey;
-			u8 der_pubkey[PUBKEY_CMPR_LEN];
-			const struct utxo *in = utxos[ii];
-			hsm_key_for_utxo(NULL, &inkey, in);
-			pubkey_to_der(der_pubkey, &inkey);
-
-			if (in->is_p2sh) {
-				u8 *script = bitcoin_scriptsig_p2sh_p2wpkh(
-					tx, &inkey);
-				bitcoin_tx_input_set_script(tx, ii, script);
-
-			} else {
-				bitcoin_tx_input_set_script(tx, ii, NULL);
-			}
-
-			u8 **witness = tal_arr(tx, u8 *, 2);
-			witness[0] = tal_dup_arr(witness, u8,
-						 sigs[ii],
-						 tal_count(sigs[ii]), 0);
-			witness[1] = tal_dup_arr(witness, u8,
-						 der_pubkey,
-						 sizeof(der_pubkey), 0);
-			bitcoin_tx_input_set_witness(tx, ii, take(witness));
-		}
+	u8 *** wits;
+	proxy_stat rv = proxy_handle_sign_withdrawal_tx(
+		&c->id, c->dbid, &satoshi_out,
+		&change_out, change_keyindex,
+		outputs, utxos, tx, &wits);
+	if (PROXY_PERMANENT(rv))
+		status_failed(STATUS_FAIL_INTERNAL_ERROR,
+			      "proxy_%s failed: %s", __FUNCTION__,
+			      proxy_last_message());
+	else if (!PROXY_SUCCESS(rv))
+		return bad_req_fmt(conn, c, msg_in,
+				   "proxy_%s error: %s", __FUNCTION__,
+				   proxy_last_message());
 
-		print_tx("RLS", tx);
-	} else {
-		/* It's P2SH, need to sign here */
-		g_proxy_impl = PROXY_IMPL_MARSHALED;
-		sign_all_inputs(tx, utxos);
-	}
+	/* Sign w/ the remote lightning-signer. */
+	g_proxy_impl = PROXY_IMPL_COMPLETE;
+	assert(tal_count(wits) == tal_count(utxos));
+	for (size_t ii = 0; ii < tal_count(wits); ++ii) {
+		struct pubkey inkey;
+		bool ok = pubkey_from_der(
+			wits[ii][1], tal_count(wits[ii][1]), &inkey);
+		assert(ok);
 
-	tx2 = withdraw_tx(tmpctx, c->chainparams,
-			  cast_const2(const struct utxo **, utxos), outputs,
-			  &changekey, change_out, NULL, NULL, nlocktime);
+		if (utxos[ii]->is_p2sh) {
+			u8 *script = bitcoin_scriptsig_p2sh_p2wpkh(
+				tx, &inkey);
+			bitcoin_tx_input_set_script(tx, ii, script);
 
-	sign_all_inputs(tx2, utxos);
+		} else {
+			bitcoin_tx_input_set_script(tx, ii, NULL);
+		}
 
-	print_tx("REF", tx2);
+		u8 **witness = tal_arr(tx, u8 *, 2);
+		witness[0] = tal_dup_arr(witness, u8,
+					 wits[ii][0],
+					 tal_count(wits[ii][0]), 0);
+		witness[1] = tal_dup_arr(witness, u8,
+					 wits[ii][1],
+					 tal_count(wits[ii][1]), 0);
+		bitcoin_tx_input_set_witness(tx, ii, take(witness));
+	}
+	print_tx("RLS", tx);
 
 	return req_reply(conn, c,
 			 take(towire_hsm_sign_withdrawal_reply(NULL, tx)));

contrib/remote_hsmd/proxy.cc

@@ -110,8 +110,8 @@ string serialized_tx(struct bitcoin_tx const *tx, bool bip144)
 	return retval;
 }
 
-void marshal_channel_nonce(struct node_id *peer_id, u64 dbid,
-			     ChannelNonce *o_np)
+void marshal_channel_nonce(struct node_id const *peer_id, u64 dbid,
+			   ChannelNonce *o_np)
 {
 	o_np->set_data(string((char const *)peer_id->k, sizeof(peer_id->k)) +
 		       string((char const *)&dbid, sizeof(dbid)));
@@ -132,6 +132,25 @@ void marshal_pubkey(struct pubkey const *pp, PubKey *o_pp)
 	o_pp->set_data(pp->pubkey.data, sizeof(pp->pubkey.data));
 }
 
+void marshal_utxo(struct utxo const *up, InputDescriptor *idesc)
+{
+	idesc->mutable_key_loc()->set_key_index(up->keyindex);
+	idesc->mutable_prev_output()->set_value(up->amount.satoshis);
+	/* FIXME - where does pk_script come from? */
+	idesc->set_spend_type(up->is_p2sh
+			      ? SpendType::P2SH_P2WPKH
+			      : SpendType::P2WPKH);
+	if (up->close_info) {
+		UnilateralCloseInfo *cinfo = idesc->mutable_close_info();
+		marshal_channel_nonce(&up->close_info->peer_id,
+				      up->close_info->channel_id,
+				      cinfo->mutable_channel_nonce());
+		if (up->close_info->commitment_point)
+			marshal_pubkey(up->close_info->commitment_point,
+				       cinfo->mutable_commitment_point());
+	}
+}
+
 void marshal_single_input_tx(struct bitcoin_tx const *tx,
 			     u8 const *output_witscript,
 			     struct witscript const **output_witscripts,
@@ -229,20 +248,24 @@ void unmarshal_ecdsa_recoverable_signature(ECDSARecoverableSignature const &es,
 	assert(ok);
 }
 
-void unmarshal_signatures(RepeatedPtrField<BitcoinSignature> const &sigs,
-			  u8 ***o_sigs)
+void unmarshal_witnesses(RepeatedPtrField<Witness> const &wits, u8 ****o_wits)
 {
-	u8 **osigs = NULL;
-	int nsigs = sigs.size();
-	if (nsigs > 0) {
-		osigs = tal_arrz(tmpctx, u8*, nsigs);
-		for (size_t ii = 0; ii < nsigs; ++ii) {
-			BitcoinSignature const &bs = sigs[ii];
-			osigs[ii] = tal_arr(osigs, u8, bs.data().size());
-			memcpy(osigs[ii], bs.data().data(), bs.data().size());
+	u8 ***owits = NULL;
+	int nwits = wits.size();
+	if (nwits > 0) {
+		owits = tal_arrz(tmpctx, u8**, nwits);
+		for (size_t ii = 0; ii < nwits; ++ii) {
+			owits[ii] = tal_arrz(owits, u8*, 2);
+			Witness const &wit = wits[ii];
+			const string &sig = wit.signature().data();
+			const string &pubkey = wit.pubkey().data();
+			owits[ii][0] = tal_arr(owits[ii], u8, sig.size());
+			memcpy(owits[ii][0], sig.data(), sig.size());
+			owits[ii][1] = tal_arr(owits[ii], u8, pubkey.size());
+			memcpy(owits[ii][1], pubkey.data(), pubkey.size());
 		}
 	}
-	*o_sigs = osigs;
+	*o_wits = owits;
 }
 
 /* Copied from ccan/mem/mem.h which the c++ compiler doesn't like */
@@ -393,7 +416,7 @@ proxy_stat proxy_handle_sign_withdrawal_tx(
 	struct bitcoin_tx_output **outputs,
 	struct utxo **utxos,
 	struct bitcoin_tx *tx,
-	u8 ***o_sigs)
+	u8 ****o_wits)
 {
 	fprintf(stderr,
 		"%s:%d %s self_id=%s peer_id=%s dbid=%" PRIu64 " "
@@ -436,17 +459,8 @@ proxy_stat proxy_handle_sign_withdrawal_tx(
 
 	req.mutable_tx()->set_raw_tx_bytes(serialized_tx(tx, true));
 	assert(tx->wtx->num_inputs == tal_count(utxos));
-	for (size_t ii = 0; ii < tx->wtx->num_inputs; ii++) {
-	 	const struct utxo *in = utxos[ii];
-		/* Fails in tests/test_closing.py::test_onchain_first_commit */
-		/* assert(!in->is_p2sh); */
-		InputDescriptor *idesc = req.mutable_tx()->add_input_descs();
-		idesc->mutable_key_loc()->set_key_index(in->keyindex);
-		idesc->mutable_prev_output()->set_value(in->amount.satoshis);
-		idesc->set_spend_type(in->is_p2sh
-				      ? SpendType::P2SH_P2WPKH
-				      : SpendType::P2WPKH);
-	}
+	for (size_t ii = 0; ii < tx->wtx->num_inputs; ii++)
+		marshal_utxo(utxos[ii], req.mutable_tx()->add_input_descs());
 
 	/* We expect exactly two total ouputs, with one non-change. */
 	/* FIXME - next assert fails in
@@ -474,15 +488,15 @@ proxy_stat proxy_handle_sign_withdrawal_tx(
 	SignFundingTxReply rsp;
 	Status status = stub->SignFundingTx(&context, req, &rsp);
 	if (status.ok()) {
-		unmarshal_signatures(rsp.signatures(), o_sigs);
+		unmarshal_witnesses(rsp.witnesses(), o_wits);
 		fprintf(stderr, "%s:%d %s self_id=%s witnesses=%s\n",
 			     __FILE__, __LINE__, __FUNCTION__,
 			     dump_node_id(&self_id).c_str(),
-			     dump_signatures((u8 const **) *o_sigs).c_str());
+			     dump_witnesses((u8 const ***) *o_wits).c_str());
 		status_debug("%s:%d %s self_id=%s witnesses=%s",
 			     __FILE__, __LINE__, __FUNCTION__,
 			     dump_node_id(&self_id).c_str(),
-			     dump_signatures((u8 const **) *o_sigs).c_str());
+			     dump_witnesses((u8 const ***) *o_wits).c_str());
 		last_message = "success";
 		return PROXY_OK;
 	} else {

contrib/remote_hsmd/proxy.h

@@ -55,7 +55,7 @@ proxy_stat proxy_handle_sign_withdrawal_tx(
 	struct bitcoin_tx_output **outputs,
 	struct utxo **utxos,
 	struct bitcoin_tx *tx,
-	u8 ***o_sigs);
+	u8 ****o_wits);
 
 proxy_stat proxy_handle_sign_remote_commitment_tx(
 	struct bitcoin_tx *tx,